Remove remote control programs to reduce hacking risk

The latest hacking warning from our governments Cyber Security watchdog ACSC reminds us that keeping old remote-control software programs on our computers poses a severe security threat

When hackers want to get control of your computer, they usually fool you into downloading a program that gives them remote access to the programs and data on your computer. There are many of these programs being used but if you know what to look for, you can remove them yourself.

If an IT consultant or computer help desk has fixed your computer remotely in the past, the program they used may still be sitting on your computer. These programs need to be removed else …

Programs such as Anydesk, TeamViewer, RemotePC, Zoho Assist , Screen Connect, LogMeIn, GoToMyPC, RemotePC etc. are legitimate software tool that allows people to remotely view and control computers and mobile devices.

For example, if an employee at a large company has a technical issue, someone on the IT team can use one of these programs to “take over” the device and diagnose the problem.

If scammers convince you to download one of these programs and share your unique access code, they can gain remote control of your Apple, Windows, or Android device. Once a scammer has remote access to your device, they can:

Search your device for sensitive files, photos and documents they can use for blackmail or to steal your identity
Steal your passwords and gain access to your bank, email, social media, and other online accounts
Spy on you as you use your device, sometimes even accessing your camera or microphone
Manipulate your screen to make it look like there are issues with your bank account — and then trick you into sending them money

The following, is a list of commonly used remote control programs, the logos/icons they may use and where they are likely found on your computer.

Screen Connect

The latest scare involves a legitimate program used widely by MSP’s (Managed Service Providers) mostly on corporate computers and is from a company called Connectwise. The product is called either ScreenConnect, Connectwise Control, Connectwise Connect or simply Connect and the logos/icons associated with it are as follows.

If old copies of this sofware are installed on your computer (version 23.9.7 and prior) they either need to be updated or removed ASAP.

See the ACSC article here: https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/critical-vulnerability-connectwises-screenconnect

Teamviewer

Teamviewer comes in a number of variations.

QuickSupport is a version where you need to give the remote opertor a unique code which changes each time you open the program.

The “Hosted” version is more of a worry as it remains hidden and can give unlimited remote access to an attacker. Remove all programs using the Teamviewer logos such as :

AnyDesk

AnyDesk scams typically follow a similar pattern:

Scammers contact you claiming to be tech support representatives. Fraudsters send phishing emails, texts, or phone calls claiming to be from large, reputable tech companies like Microsoft — or even pose as representatives from your bank. In other cases, you may end up on a fake website that displays pop-ups warning that your device has been hacked.
Next, they claim that your device has been hacked or is infected with malware. This is a social engineering scare tactic designed to create a sense of urgency. The scammers may even claim that someone is using your identity to commit cybercrime.
To fix the problem, they persuade you to download AnyDesk. Scammers keep you on the phone while you download the application and then ask for your secret PIN number. This gives them access to your computer.
Once they have remote access, they steal sensitive information or use your device to trick you. For example, they might break into your other accounts, or make you think they refunded too much money to you.

What makes AnyDesk scams especially dangerous is that fraudsters still have access to your device — even after scamming you.

LogMeIn

GotoMyPc

RemotePC

Zoho Assist

Microsoft Remote Desktop Protocol (RDP)

Microsoft’s Remote Desktop or RDP is probably the oldest of the Remote Desktop applications and is till widely used by IT professionals to access remote or virtual servers. It can also be used by scammers, so remove any instances of it from your PC or Mac.